$ rpki-client -vvf repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3230332e3137332e39312e302f32342d3234203d3e20313339343630.roa File: 3230332e3137332e39312e302f32342d3234203d3e20313339343630.roa (raw, json) Hash identifier: nnj0KLDw9ngWzorUbdMHyDWYfETgXpzXO3uTEwZi24Q= Subject key identifier: 7E:E7:A6:30:76:09:02:E9:F7:08:49:DD:B7:70:08:93:74:7C:99:BD Certificate issuer: /CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Certificate serial: 49268EDAE84067DCD7F994E2A795462027B0BFAB Authority key identifier: C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3230332e3137332e39312e302f32342d3234203d3e20313339343630.roa Signing time: Wed 04 Jun 2025 02:16:26 +0000 ROA not before: Wed 04 Jun 2025 02:11:26 +0000 ROA not after: Wed 03 Jun 2026 02:16:26 +0000 asID: 139460 IP address blocks: 203.173.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 10:03:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:26:8e:da:e8:40:67:dc:d7:f9:94:e2:a7:95:46:20:27:b0:bf:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Validity Not Before: Jun 4 02:11:26 2025 GMT Not After : Jun 3 02:16:26 2026 GMT Subject: CN=7EE7A630760902E9F70849DDB7700893747C99BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:9a:94:8b:ef:6c:36:53:23:bb:7e:6c:a3:31: a9:b8:76:64:67:3b:f5:42:6f:87:96:80:2c:25:9f: 9c:41:17:48:df:f6:85:f8:d1:55:ab:a4:d1:83:cf: 33:0b:98:8f:c2:4c:8a:8c:67:e2:b0:88:3b:e6:5b: 40:05:f9:77:0c:7f:e4:ea:9d:60:5b:cd:04:c7:29: a4:62:df:32:45:87:42:17:a3:5d:9f:8e:07:5a:43: 32:ab:30:e0:12:bf:03:24:e7:74:c9:7b:3c:bd:1f: dd:fb:c2:2f:ec:37:21:d9:fd:28:cf:d7:61:9e:40: 65:4c:28:50:b5:52:c2:5f:5c:0a:ae:6c:5f:95:39: 41:d9:4f:aa:64:01:2a:89:8e:00:71:93:80:88:89: a8:2e:16:07:35:bb:f7:bc:a9:4c:75:ad:69:cc:32: de:74:87:6e:99:1c:a9:e3:d1:fe:cb:44:fe:02:e9: b6:53:94:0b:aa:12:c1:f5:1b:77:4f:17:ca:45:38: 7d:b1:b5:ce:82:24:25:d8:9e:4e:c4:aa:c9:d6:48: af:dc:61:09:71:20:e3:63:a9:10:b4:34:62:c2:7d: 68:03:2e:d4:f2:c8:53:6e:5e:62:75:cb:0b:8f:3f: 24:94:e3:80:32:f9:61:d6:eb:eb:a0:3b:a7:8d:4c: 10:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:E7:A6:30:76:09:02:E9:F7:08:49:DD:B7:70:08:93:74:7C:99:BD X509v3 Authority Key Identifier: keyid:C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3230332e3137332e39312e302f32342d3234203d3e20313339343630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.173.91.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:8a:8b:ef:21:25:b3:10:0a:bb:27:8b:e4:9f:47:d4:6b:55: b0:02:a6:75:4c:83:67:76:60:bd:60:21:62:61:72:71:a0:5f: b9:c0:f7:9d:ef:d6:eb:f5:1c:ed:f4:ea:ff:50:b7:83:e7:ab: 9b:e4:84:0b:dd:f3:c7:5b:8d:a4:13:4e:6b:93:33:3e:96:e9: 29:ad:08:98:59:8e:a6:dc:96:38:a4:2d:25:21:e6:80:ac:c0: a1:93:f3:1e:72:dd:53:75:ee:1d:9e:43:bf:29:f6:05:b3:d5: b6:fe:30:76:f1:83:bc:54:7b:97:48:49:a7:10:1c:f6:a9:ee: 77:57:b3:11:07:96:92:f7:2e:f7:cd:9f:cc:5c:25:e4:6c:e2: a4:6a:82:f1:12:74:45:22:25:e4:88:40:19:67:f5:d8:5e:2f: 11:19:fc:86:4c:c0:ad:45:11:48:fc:a2:85:4a:45:de:01:bc: 56:05:36:ab:21:ed:ee:34:09:7d:de:f8:11:28:fe:23:14:b8: b7:58:0a:0a:83:96:4b:99:2f:ed:45:77:e3:f1:f6:53:91:f6: d8:2f:da:73:0d:30:73:c5:12:24:a4:73:c2:c5:13:32:2a:d2: 40:15:cb:90:d0:61:27:f3:d8:5d:7d:d9:ce:c7:dd:51:de:d5: 61:91:41:51 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSSaO2uhAZ9zX+ZTip5VGICewv6swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMz MUY4MDJFMTAeFw0yNTA2MDQwMjExMjZaFw0yNjA2MDMwMjE2MjZaMDMxMTAvBgNV BAMTKDdFRTdBNjMwNzYwOTAyRTlGNzA4NDlEREI3NzAwODkzNzQ3Qzk5QkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1mpSL72w2UyO7fmyjMam4dmRn O/VCb4eWgCwln5xBF0jf9oX40VWrpNGDzzMLmI/CTIqMZ+KwiDvmW0AF+XcMf+Tq nWBbzQTHKaRi3zJFh0IXo12fjgdaQzKrMOASvwMk53TJezy9H937wi/sNyHZ/SjP 12GeQGVMKFC1UsJfXAqubF+VOUHZT6pkASqJjgBxk4CIiaguFgc1u/e8qUx1rWnM Mt50h26ZHKnj0f7LRP4C6bZTlAuqEsH1G3dPF8pFOH2xtc6CJCXYnk7EqsnWSK/c YQlxIONjqRC0NGLCfWgDLtTyyFNuXmJ1ywuPPySU44Ay+WHW6+ugO6eNTBA3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfuemMHYJAun3CEndt3AIk3R8mb0wHwYDVR0j BBgwFoAUyN1dhPr6v36vYrOw9ORaIzH4AuEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OTQ1Yjg2ZS0wODk1LTQ3NTktYTc3Yy1hMDZjZTE0ZTI0M2MvMC9DOERENUQ4NEZB RkFCRjdFQUY2MkIzQjBGNEU0NUEyMzMxRjgwMkUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMzMUY4 MDJFMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E5NDViODZlLTA4OTUtNDc1OS1h NzdjLWEwNmNlMTRlMjQzYy8wLzMyMzAzMzJlMzEzNzMzMmUzOTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzNjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy61bMA0GCSqG SIb3DQEBCwUAA4IBAQCNiovvISWzEAq7J4vkn0fUa1WwAqZ1TINndmC9YCFiYXJx oF+5wPed79br9Rzt9Or/ULeD56ub5IQL3fPHW42kE05rkzM+lukprQiYWY6m3JY4 pC0lIeaArMChk/Mect1Tde4dnkO/KfYFs9W2/jB28YO8VHuXSEmnEBz2qe53V7MR B5aS9y73zZ/MXCXkbOKkaoLxEnRFIiXkiEAZZ/XYXi8RGfyGTMCtRRFI/KKFSkXe AbxWBTarIe3uNAl93vgRKP4jFLi3WAoKg5ZLmS/tRXfj8fZTkfbYL9pzDTBzxRIk pHPCxRMyKtJAFcuQ0GEn89hdfdnOx91R3tVhkUFR -----END CERTIFICATE-----Generated at Sun Jun 8 00:23:49 2025 by rpki-client